Application Security Engineer

  • location: Boston, MA
  • type: Permanent
  • salary: $130,000 - $150,000 per year
easy apply

job description

Application Security Engineer

job summary:
We are seeking an application security engineer (ASE) to join our team who is a self-starter, ambitious, team player who will work in our cross functional team, adopting software industry best practice, quality assurance, and overall development of our platform. The candidate should have experience with application security, secure coding, microservice architectures and cloud-native design.

Qualifications

Responsibilities:

- Identify risks and areas of exposure in applications, our development process and architecture.

- Perform security reviews of source code, stored procedures, datastores, and server/service configurations.

- Define and document application security requirements.

- Oversee development of security components throughout all stages of the SDLC.

- Perform manual and automated security testing.

- Monitor industry trends and threat landscape and recommend necessary controls or countermeasures.

- Educate developers on secure coding techniques and security best practices.

- Participate in development of security policies, standards, and processes.

- Participate in incident handling and perform application-related forensics activities.

Skills

Required:

- Bachelor's degree in Computer Science or equivalent

- Good understanding of RESTful APIs and microservices

- Knowledge of JIRA

- Understanding of Agile development methodologies

- Experience with Python, Go, Node.js, Angular.js or Vue.js

- Experience working with cloud platforms (AWS, Azure, Google Cloud, or similar)

- Working knowledge of application containers frameworks and technologies (Docker, Kubernetes, Red Hat OpenShift, Pivotal Cloud Foundry)

- Ability to identify security vulnerabilities from source code reviews and testing.

- Knowledge of encryption technologies, secure communications, and secure credentials management.

- Advanced knowledge of common application vulnerabilities, (e.g.: XSS, CSRF, SQL injection, cookie/header/encoding manipulation, input/output validation, session replay).

- Intimate familiarity with web application testing tools (eg: Burp, Parox, Fiddler, Havij, netcat). Ability to write proof-of-concept exploits is a big plus.

- Ability to define application security requirements and build secure web application solutions.

- Advanced written and verbal communication skills including ability to present technical subjects to non-technical audiences.

- Self-directed and capable of working in a dynamic and startup environment.

Preferred:

- AWS Security certified

- ISO27001, SOC2 certification experience

 
location: Boston, Massachusetts
job type: Permanent
salary: $130,000 - 150,000 per year
work hours: 8am to 6pm
education: Bachelors
 
responsibilities:
Responsibilities:

- Identify risks and areas of exposure in applications, our development process and architecture.

- Perform security reviews of source code, stored procedures, datastores, and server/service configurations.

- Define and document application security requirements.

- Oversee development of security components throughout all stages of the SDLC.

- Perform manual and automated security testing.

- Monitor industry trends and threat landscape and recommend necessary controls or countermeasures.

- Educate developers on secure coding techniques and security best practices.

- Participate in development of security policies, standards, and processes.

- Participate in incident handling and perform application-related forensics activities.

 
qualifications:
Skills

Required:

- Bachelor's degree in Computer Science or equivalent

- Good understanding of RESTful APIs and microservices

- Knowledge of JIRA

- Understanding of Agile development methodologies

- Experience with Python, Go, Node.js, Angular.js or Vue.js

- Experience working with cloud platforms (AWS, Azure, Google Cloud, or similar)

- Working knowledge of application containers frameworks and technologies (Docker, Kubernetes, Red Hat OpenShift, Pivotal Cloud Foundry)

- Ability to identify security vulnerabilities from source code reviews and testing.

- Knowledge of encryption technologies, secure communications, and secure credentials management.

 
skills: Skills

Required:

- Bachelor's degree in Computer Science or equivalent

- Good understanding of RESTful APIs and microservices

- Knowledge of JIRA

- Understanding of Agile development methodologies

- Experience with Python, Go, Node.js, Angular.js or Vue.js

- Experience working with cloud platforms (AWS, Azure, Google Cloud, or similar)

- Working knowledge of application containers frameworks and technologies (Docker, Kubernetes, Red Hat OpenShift, Pivotal Cloud Foundry)

- Ability to identify security vulnerabilities from source code reviews and testing.

- Knowledge of encryption technologies, secure communications, and secure credentials management.


Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

easy apply

get jobs in your inbox.

sign up
{{returnMsg}}

related jobs


    Solutions Design Engineer

  • location: North Reading, MA
  • job type: Temp to Perm
  • salary: $28 - $34 per hour
  • date posted: 10/16/2020